CVE-2012-2318 (retired)

msg.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.4 doesnot properly handle crafted characters, which allows remote servers tocause a denial of service (application crash) by placing these charactersin a text/plain message.